← Pricing / Starter

Starter - 99 EUR

A single automated scan of your public perimeter. 15 security controls checked. PDF delivered in 24 hours.

What you get

1. TLS configuration audit (cipher suites, certificate chain, HSTS, OCSP stapling)
2. HTTP security headers check (CSP, X-Frame-Options, Referrer-Policy, Permissions-Policy)
3. Cookie flags audit (Secure, HttpOnly, SameSite)
4. DNS security (SPF, DKIM, DMARC, CAA, DNSSEC)
5. Subdomain enumeration via certificate transparency
6. Exposed panel detection (admin, wp-login, phpmyadmin, .git)
7. Open port scan of published IPs (top 1000)
8. Technology fingerprint with CVE cross-reference
9. Content-Security-Policy parser + rating
10. Public bucket scan (S3, GCS, Azure Blob)
11. Email header policy (DMARC alignment, reject policy)
12. Known-breach exposure check (HaveIBeenPwned domain)
13. Certificate expiration + weak-crypto flags
14. robots.txt + sitemap.xml information disclosure
15. Third-party script audit (integrity, origin, privacy)

What you do NOT get

• Manual triage or engineer review
• Exploitation attempts
• Authenticated testing
• Remediation support
• NDA or written engagement letter

If you need any of the above, the Standard tier starts at 799 EUR and includes 8 hours of engineer review.

Order now — EUR 99

Card checkout via Stripe. Scan starts within 24 hours of payment clearing. PDF emailed to the address you use at checkout.

What happens next

1. Stripe confirms payment (Apple Pay / Google Pay / card).
2. Scoping email reaches you within 60 seconds.
3. Reply with any authentication or scope notes (optional).
4. Scan runs within 24 hours. PDF delivered to the email on your order.

Refund policy

If the scan cannot reach your domain (DNS misconfiguration, rate limit, geo-block), you get a full refund. If findings are disputed, we re-run the specific check at no charge. Once the PDF is delivered, the engagement is considered complete.